Ciao r16,

Ho seguito e fatto tutto quello che mi ai scritto

di seguito ti posto il log




Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Versione database: 5533

Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

16/01/2011 20.43.34
mbam-log-2011-01-16 (20-43-34).txt

Tipo di scansione: Scansione completa (C:\|)
Elementi esaminati: 216872
Tempo trascorso: 27 minuti, 7 secondi

Processi infetti in memoria: 0
Moduli di memoria infetti: 0
Chiavi di registro infette: 1
Valori di registro infetti: 0
Voci infette nei dati di registro: 0
Cartelle infette: 0
File infetti: 288

Processi infetti in memoria:
(Non sono stati rilevati elementi nocivi)

Moduli di memoria infetti:
(Non sono stati rilevati elementi nocivi)

Chiavi di registro infette:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-0000-0000-0000-000020040000} (Trojan.Dialer) -> Quarantined and deleted successfully.

Valori di registro infetti:
(Non sono stati rilevati elementi nocivi)

Voci infette nei dati di registro:
(Non sono stati rilevati elementi nocivi)

Cartelle infette:
(Non sono stati rilevati elementi nocivi)

File infetti:
c:\host.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\documents and settings\XX\dati applicazioni\desktopicon\ebayshortcuts.exe (Adware.ADON) -> Quarantined and deleted successfully.
c:\documents and settings\XX\Desktop\mirc-6.31-ita_tuttoirc\mirc-6.31-ita_tuttoirc\mirc-6.31-ita_tuttoirc\html.dll (Trojan.Agent) -> Quarantined and deleted successfully.
c:\documents and settings\XX\Desktop\mirc-6.31-ita_tuttoirc\mirc-6.31-ita_tuttoirc\mirc-6.31-ita_tuttoirc\xdccb440_2138\userinput.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\documents and settings\XX\Desktop\video musicali\mirc-6.31-ita_tuttoirc\html.dll (Trojan.Agent) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP68\A0053429.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP68\A0053430.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP68\A0053449.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP68\A0053450.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP68\A0053469.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP68\A0053470.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053514.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053515.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053541.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053542.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053561.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053562.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053600.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053580.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053581.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053599.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053619.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053620.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053638.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053639.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053657.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053658.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053677.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053678.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053695.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053696.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053721.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053722.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053740.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053741.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053758.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053759.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053776.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053777.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053792.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053793.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053815.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053816.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053836.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053837.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053857.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053858.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053875.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053876.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053895.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053896.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053912.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053928.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053948.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053966.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053984.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054000.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054001.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054018.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054019.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053911.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053929.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053947.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053965.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0053983.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054036.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054037.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054054.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054055.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054072.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054073.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054091.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054092.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054110.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054128.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054148.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054166.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054184.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054185.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054228.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054248.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054249.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054261.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054262.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054111.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054129.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054147.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054165.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054229.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054279.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054280.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054309.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0054310.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055309.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055310.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055327.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055328.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055406.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055407.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055345.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055346.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055363.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055364.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055395.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055396.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055424.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055425.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055442.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055443.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055460.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055461.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055471.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055472.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055489.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055490.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055519.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055520.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055537.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055538.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055556.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055557.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055574.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055575.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055592.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055593.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055634.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055635.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055647.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055648.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055665.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055666.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055684.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055685.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055846.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055812.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055813.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055829.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055830.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055845.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055858.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055859.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055871.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055872.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055884.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055885.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055897.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055898.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055922.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055923.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055938.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055939.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055968.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055981.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055982.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP69\A0055969.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP70\A0056014.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP70\A0056015.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP70\A0056027.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP70\A0056028.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP70\A0056049.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP70\A0056050.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP70\A0056087.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP70\A0056088.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP70\A0056101.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP70\A0056102.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP71\A0056170.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP71\A0056171.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP71\A0056190.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP71\A0056191.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP71\A0056204.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP71\A0056205.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0056502.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0057513.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0056419.dll (Trojan.Agent) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0056435.dll (Backdoor.Bot) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0056454.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0056455.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0056468.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0056469.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0056478.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0056479.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0056486.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0056487.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0056501.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0057501.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0057502.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0057512.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0057538.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0057539.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0057571.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0057572.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0057580.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0057581.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0058580.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP72\A0058581.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP73\A0058671.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP73\A0058672.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP74\A0058684.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP74\A0058685.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP74\A0058702.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP74\A0058703.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP74\A0058712.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP74\A0058713.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP75\A0058806.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP75\A0058807.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP76\A0058819.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP76\A0058820.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP76\A0058839.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP76\A0058840.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP76\A0059839.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP76\A0059840.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP76\A0059849.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP76\A0059850.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP77\A0059943.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP77\A0059944.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP78\A0059966.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP78\A0059967.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP79\A0060058.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP79\A0060059.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060081.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060082.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060090.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060091.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060098.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060099.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060107.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060108.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060115.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060116.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060123.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060124.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060138.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060139.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060168.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060222.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060312.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060384.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060402.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060151.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060152.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060159.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060160.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060169.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060178.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060179.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060187.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060188.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060206.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060207.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060221.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060237.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060238.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060250.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060251.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060271.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060272.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060288.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060289.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060302.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060303.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060311.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060322.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060323.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060338.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060339.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060351.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060352.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060359.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060360.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060367.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060368.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060375.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060376.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060383.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060392.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060393.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060401.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060415.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060416.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060434.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060435.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060443.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP80\A0060444.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP81\A0060461.exe (Trojan.Dropper) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP81\A0060462.exe (Malware.Packer.Mew) -> Quarantined and deleted successfully.
c:\system volume information\_restore{f6ff1093-554e-48b5-8152-1f2cb5defe40}\RP83\A0061050.exe (Malware.Packer.Mew) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\temp1.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\WINDOWS\system32\temp2.exe (Trojan.Downloader) -> Quarantined and deleted successfully.

Ciao r16


ho fatto la scansione con combofix di seguito il log



ComboFix 11-01-15.01 - XX 16/01/2011 22.04.02.1.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.1977.1459 [GMT 1:00]
Eseguito da: c:\documents and settings\XX\Desktop\ComboFix.exe

ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Autorun.inf
c:\documents and settings\XX\Dati applicazioni\Desktopicon
c:\documents and settings\XX\Dati applicazioni\Desktopicon\config.ini
c:\documents and settings\XX\Dati applicazioni\PriceGong
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\1.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\a.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\b.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\c.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\d.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\e.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\f.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\g.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\h.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\i.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\J.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\k.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\l.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\m.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\mru.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\n.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\o.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\p.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\q.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\r.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\s.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\t.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\u.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\v.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\w.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\x.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\y.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\z.xml
c:\windows\autorun.inf
c:\windows\system32\_000006_.tmp.dll
c:\windows\Temp\log.txt

.
((((((((((((((((((((((((( Files Creati Da 2010-12-16 al 2011-01-16 )))))))))))))))))))))))))))))))))))
.

2011-01-16 18:24 . 2011-01-16 18:24 -------- d-----w- c:\documents and settings\XX\Dati applicazioni\Malwarebytes
2011-01-16 18:24 . 2011-01-16 18:24 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2011-01-16 18:24 . 2010-12-20 17:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-01-16 18:24 . 2011-01-16 18:24 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2011-01-16 18:24 . 2010-12-20 17:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-01-16 16:07 . 2011-01-16 16:07 388096 ----a-r- c:\documents and settings\XX\Dati applicazioni\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-01-16 16:07 . 2011-01-16 16:07 -------- d-----w- c:\programmi\Trend Micro
2011-01-15 04:15 . 2011-01-15 04:15 -------- d-----w- c:\windows\system32\wbem\Repository
2011-01-15 04:15 . 2011-01-15 04:15 -------- d-----w- c:\programmi\AVG
2011-01-15 03:36 . 2011-01-15 03:36 -------- d-----w- c:\programmi\Drive Rescue

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-11-06 06:04 . 2010-11-06 06:04 0 ----a-w- c:\windows\system32\ConduitEngine.tmp
.

((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\programmi\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2010-10-18 138552]

[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1631550F-191D-4826-B069-D9439253D926}]
2010-08-18 10:08 353656 ----a-w- c:\programmi\PriceGong\2.1.0\PriceGongIE.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
2010-10-18 10:26 3908192 ----a-w- c:\programmi\ConduitEngine\ConduitEngin0.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2010-10-18 16:28 1485112 ----a-r- c:\programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\programmi\ConduitEngine\ConduitEngin0.dll" [2010-10-18 3908192]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2010-10-18 1485112]

[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\programmi\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2010-10-18 1485112]
"{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\programmi\ConduitEngine\ConduitEngin0.dll" [2010-10-18 3908192]

[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]

[HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"L08IXLRD_1089015"="c:\programmi\Microsoft Student\Microsoft Encarta 2008 - Premium + Student DVD\EDICT.EXE" [2007-06-12 351000]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"preload"="c:\windows\RUNXMLPL.exe" [2007-04-21 20480]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-03-08 40048]
"IAAnotif"="c:\programmi\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-05-07 178712]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2008-04-14 208952]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2008-04-14 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-06-17 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-06-17 170520]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-06-17 141848]
"SynTPEnh"="c:\programmi\Synaptics\SynTP\SynTPEnh.exe" [2008-02-22 1032192]
"RTHDCPL"="RTHDCPL.EXE" [2008-05-16 16862720]
"AzMixerSel"="c:\programmi\Realtek\Audio\InstallShield\AzMixerSel.exe" [2006-07-18 53248]
"WarReg_PopUp"="c:\acer\WR_PopUp\WarReg_PopUp.exe" [2007-02-20 61440]
"Google Desktop Search"="c:\programmi\Google\Google Desktop Search\GoogleDesktop.exe" [2010-06-28 30192]
"ePower_DMC"="c:\programmi\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2008-07-08 466944]
"Boot"="c:\programmi\Acer\Empowering Technology\ePower\Boot.exe" [2007-12-25 579584]
"eRecoveryService"="c:\programmi\Acer\Empowering Technology\eRecovery\eRAgent.exe" [2007-07-11 421888]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2008-06-09 870920]
"SunJavaUpdateSched"="c:\programmi\Java\jre6\bin\jusched.exe" [2009-11-22 149280]
"NeroFilterCheck"="c:\programmi\File comuni\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
"SecurDisc"="c:\programmi\Nero\Nero 7\InCD\NBHGui.exe" [2007-06-25 1629480]
"InCD"="c:\programmi\Nero\Nero 7\InCD\InCD.exe" [2007-06-25 1057064]
"SweetIM"="c:\programmi\SweetIM\Messenger\SweetIM.exe" [2010-10-13 111928]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Documents and Settings\\XX\\Desktop\\mIRC-6.31-ITA_TuttoIRC\\mIRC-6.31-ITA_TuttoIRC\\mIRC-6.31-ITA_TuttoIRC\\mIRC.exe"=

R2 ONDA Autorun CDROM Monitor;ONDA Autorun CDROM Monitor;c:\windows\system32\SupportAppXL\onda_mon.exe [06/12/2010 19.39.19 86016]
R2 VMCService;Vodafone Mobile Connect Service;c:\programmi\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [03/07/2009 11.40.30 9216]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [13/02/2009 10.25.20 108032]
R3 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [13/05/2008 20.49.12 51288]
R3 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [12/06/2008 17.30.12 43608]
S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\drivers\ewusbnet.sys [09/01/2010 17.47.35 112640]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\programmi\Google\Google Desktop Search\GoogleDesktop.exe [13/02/2009 1.42.20 30192]
S3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\drivers\ewusbfake.sys [09/01/2010 17.50.09 102656]
S3 ONDAusbmdm6k;ONDA Proprietary USB Driver;c:\windows\system32\drivers\ONDAusbmdm6k.sys [06/12/2010 19.40.00 104960]
S3 ONDAusbnet;ONDA USB-NDIS miniport;c:\windows\system32\drivers\ONDAusbnet.sys [06/12/2010 19.40.00 110080]
S3 ONDAusbnmea;ONDA NMEA Port;c:\windows\system32\drivers\ONDAusbnmea.sys [06/12/2010 19.40.00 104960]
S3 ONDAusbser6k;ONDA Diagnostic Port;c:\windows\system32\drivers\ONDAusbser6k.sys [06/12/2010 19.40.00 104960]
S3 TpChoice;Touch Pad Detection Filter driver;c:\windows\system32\drivers\TpChoice.sys [26/12/2007 6.23.10 17968]

--- Altri Servizi/Drivers In Memoria ---

*NewlyCreated* - UBHELPER
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.it/
mStart Page = hxxp://home.sweetim.com
uInternet Connection Wizard,ShellNext = iexplore
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\programmi\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
.
- - - - CHIAVI ORFANE RIMOSSE - - - -

BHO-{6b284373-1765-4464-a587-80fbc2b2eefa} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-msnmsgr - ~c:\programmi\Windows Live\Messenger\msnmsgr.exe
HKLM-Run-MobileConnect - %programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-01-16 22:11
Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•9~*]
"0140110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'explorer.exe'(1476)
c:\windows\system32\WININET.dll
c:\programmi\SweetIM\Messenger\mgAdaptersProxy.dll
c:\progra~1\FILECO~1\MICROS~1\WEBCOM~1\10\OWC10.DLL
c:\programmi\File comuni\Microsoft Shared\Web Components\10\1040\OWCI10.DLL
c:\progra~1\FILECO~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
c:\programmi\File comuni\Microsoft Shared\Web Components\11\1040\OWCI11.DLL
c:\windows\system32\mshtml.dll
c:\windows\system32\msls31.dll
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\programmi\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\programmi\Nero\Nero 7\InCD\InCDsrv.exe
c:\programmi\Java\jre6\bin\jqs.exe
c:\programmi\File comuni\LightScribe\LSSrvc.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\igfxsrvc.exe
c:\programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\programmi\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe
c:\programmi\O2Micro Flash Memory Card Driver\o2flash.exe
c:\windows\system32\wdfmgr.exe
c:\windows\system32\igfxext.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wbem\unsecapp.exe
c:\windows\system32\wscntfy.exe
c:\docume~1\XX\IMPOST~1\Temp\RtkBtMnt.exe
.
**************************************************************************
.
Ora fine scansione: 2011-01-16 22:14:03 - Il pc è stato riavviato
ComboFix-quarantined-files.txt 2011-01-16 21:13

Pre-Run: 129.897.918.464 byte disponibili
Post-Run: 132.649.431.040 byte disponibili

- - End Of File - - D12ECFF6C9212B4082AC0F66E4D32CD2

ciao r16,

ho fatto quello che mi ai detto pero mi succede che quando si e andato a riavviare il computer da solo,
e uscito da piu di un ora (chiusura di windows in corso)cioe praticamente non si spegne il computer.

Che faccio?????

Ciao r16,

alla fine si e sbloccato il computer.
Di seguito ti posto il log che mi e uscito alla fine

grazie




ComboFix 11-01-16.04 - XX 17/01/2011 13.48.28.2.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.39.1040.18.1977.1457 [GMT 1:00]
Eseguito da: c:\documents and settings\XX\Desktop\ComboFix.exe
Opzioni usate :: c:\documents and settings\XX\Documenti\CFScript.txt

ATTENZIONE - QUESTO PC NON HA LA CONSOLE DI RIPRISTINO DI EMERGENZA INSTALLATA !!
.

((((((((((((((((((((((((((((((((((((( Altre eliminazioni )))))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\XX\Dati applicazioni\PriceGong
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\1.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\a.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\b.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\c.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\d.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\e.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\f.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\g.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\h.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\i.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\J.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\k.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\l.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\m.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\mru.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\n.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\o.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\p.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\q.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\r.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\s.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\t.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\u.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\v.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\w.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\x.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\y.xml
c:\documents and settings\XX\Dati applicazioni\PriceGong\Data\z.xml

.
((((((((((((((((((((((((( Files Creati Da 2010-12-17 al 2011-01-17 )))))))))))))))))))))))))))))))))))
.

2011-01-16 18:24 . 2011-01-16 18:24 -------- d-----w- c:\documents and settings\XX\Dati applicazioni\Malwarebytes
2011-01-16 18:24 . 2011-01-16 18:24 -------- d-----w- c:\documents and settings\All Users\Dati applicazioni\Malwarebytes
2011-01-16 18:24 . 2010-12-20 17:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-01-16 18:24 . 2011-01-16 18:24 -------- d-----w- c:\programmi\Malwarebytes' Anti-Malware
2011-01-16 18:24 . 2010-12-20 17:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-01-16 16:07 . 2011-01-16 16:07 388096 ----a-r- c:\documents and settings\XX\Dati applicazioni\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-01-16 16:07 . 2011-01-16 16:07 -------- d-----w- c:\programmi\Trend Micro
2011-01-15 04:15 . 2011-01-15 04:15 -------- d-----w- c:\windows\system32\wbem\Repository
2011-01-15 04:15 . 2011-01-15 04:15 -------- d-----w- c:\programmi\AVG
2011-01-15 03:36 . 2011-01-15 03:36 -------- d-----w- c:\programmi\Drive Rescue

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-11-06 06:04 . 2010-11-06 06:04 0 ----a-w- c:\windows\system32\ConduitEngine.tmp
.

((((((((((((((((((((((((((((( SnapShot@2011-01-16_21.10.12 )))))))))))))))))))))))))))))))))))))))))
.
+ 2004-05-14 20:04 . 2004-05-14 20:04 49152 c:\windows\XMLaunch.exe
+ 2006-12-01 23:46 . 2006-12-01 23:46 65536 c:\windows\WinSxS\x86_Microsoft.VC80.OpenMP_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6c18549a\vcomp.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80KOR.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80JPN.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ITA.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80FRA.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ESP.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 57344 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80ENU.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 65536 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80DEU.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 45056 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHT.dll
+ 2006-12-01 23:08 . 2006-12-01 23:08 40960 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_91481303\mfc80CHS.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\mfc80KOR.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 49152 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\mfc80JPN.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\mfc80ITA.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\mfc80FRA.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 61440 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\mfc80ESP.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 57344 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\mfc80ENU.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 65536 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\mfc80DEU.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 45056 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\mfc80CHT.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 40960 c:\windows\WinSxS\x86_Microsoft.VC80.MFCLOC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_3415f6d0\mfc80CHS.dll
+ 2006-12-01 23:26 . 2006-12-01 23:26 57856 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80u.dll
+ 2006-12-01 23:25 . 2006-12-01 23:25 69632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfcm80.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 57344 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_dec6ddd2\mfcm80u.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 69632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_dec6ddd2\mfcm80.dll
+ 2006-12-01 21:56 . 2006-12-01 21:56 96256 c:\windows\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_cbb27474\ATL80.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 95744 c:\windows\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_6e805841\ATL80.dll
+ 2011-01-17 15:04 . 2011-01-17 15:04 16384 c:\windows\temp\Perflib_Perfdata_5e4.dat
+ 2004-08-11 00:45 . 2004-08-11 00:45 10752 c:\windows\system32\wpdtrace.dll
+ 2004-08-11 00:45 . 2004-08-11 00:45 66560 c:\windows\system32\wpdmtpus.dll
+ 2004-08-11 00:45 . 2004-08-11 00:45 61952 c:\windows\system32\wpdconns.dll
+ 2004-08-11 00:45 . 2004-08-11 00:45 38912 c:\windows\system32\wpd_ci.dll
+ 2004-08-11 00:45 . 2004-08-11 00:45 38912 c:\windows\system32\wdfmgr.exe
+ 2004-08-11 00:45 . 2004-08-11 00:45 15872 c:\windows\system32\wdfapi.dll
+ 1999-11-25 01:40 . 1999-11-25 01:40 40960 c:\windows\system32\VBAME.DLL
+ 2004-08-11 00:45 . 2004-08-11 00:45 47104 c:\windows\system32\uwdf.exe
+ 2003-02-21 03:16 . 2003-02-21 03:16 49152 c:\windows\system32\URTTemp\regtlib.exe
+ 2003-02-20 17:09 . 2003-02-20 17:09 77824 c:\windows\system32\URTTemp\mscorsn.dll
+ 2006-10-08 19:51 . 2007-11-30 11:18 26488 c:\windows\system32\spupdsvc.exe
+ 1998-03-25 04:54 . 1998-03-25 04:54 15872 c:\windows\system32\SCP32.DLL
+ 2006-06-29 06:05 . 2006-06-29 06:05 23552 c:\windows\system32\normaliz.dll
+ 2006-06-28 15:59 . 2006-06-28 15:59 24576 c:\windows\system32\nlsdl.dll
+ 2003-02-20 17:16 . 2003-02-20 17:16 32768 c:\windows\system32\netfxperf.dll
+ 2007-05-16 08:18 . 2007-05-16 08:18 95864 c:\windows\system32\NeroCo.dll
+ 2001-12-26 14:12 . 2001-12-26 14:12 65536 c:\windows\system32\multiplex_vcd.dll
+ 2003-04-18 15:29 . 2003-04-18 15:29 82432 c:\windows\system32\msxml4r.dll
+ 1998-08-09 18:07 . 1998-08-09 18:07 94208 c:\windows\system32\MSSTKPRP.DLL
+ 2007-08-13 16:01 . 2007-08-13 16:01 48128 c:\windows\system32\mshtmler.dll
+ 2007-08-13 16:32 . 2007-08-13 16:32 45568 c:\windows\system32\mshta.exe
+ 2007-08-13 16:36 . 2007-08-13 16:36 12288 c:\windows\system32\msfeedssync.exe
+ 2003-03-19 04:44 . 2003-03-19 04:44 49152 c:\windows\system32\MFC71KOR.DLL
+ 2003-03-19 04:44 . 2003-03-19 04:44 49152 c:\windows\system32\MFC71JPN.DLL
+ 2003-03-19 04:44 . 2003-03-19 04:44 61440 c:\windows\system32\MFC71ITA.DLL
+ 2003-03-19 04:44 . 2003-03-19 04:44 61440 c:\windows\system32\MFC71FRA.DLL
+ 2003-03-19 04:44 . 2003-03-19 04:44 61440 c:\windows\system32\MFC71ESP.DLL
+ 2003-03-19 04:44 . 2003-03-19 04:44 57344 c:\windows\system32\MFC71ENU.DLL
+ 2003-03-19 04:44 . 2003-03-19 04:44 65536 c:\windows\system32\MFC71DEU.DLL
+ 2003-03-19 04:44 . 2003-03-19 04:44 45056 c:\windows\system32\MFC71CHT.DLL
+ 2003-03-19 04:44 . 2003-03-19 04:44 40960 c:\windows\system32\MFC71CHS.DLL
+ 1998-12-03 23:44 . 1998-12-03 23:44 57344 c:\windows\system32\MFC42ITA.DLL
+ 2006-06-19 21:26 . 2006-06-19 21:26 94208 c:\windows\system32\mdmxsdk.dll
+ 2007-08-13 16:44 . 2007-08-13 16:44 40960 c:\windows\system32\licmgr10.dll
+ 2007-08-13 16:39 . 2007-08-13 16:39 92672 c:\windows\system32\inseng.dll
+ 2007-08-13 16:36 . 2007-08-13 16:36 36352 c:\windows\system32\imgutil.dll
+ 2007-08-13 16:39 . 2007-08-13 16:39 55296 c:\windows\system32\iesetup.dll
+ 2006-06-29 06:05 . 2006-06-29 06:05 26112 c:\windows\system32\idndl.dll
+ 2006-11-15 22:01 . 2006-11-15 22:01 35648 c:\windows\system32\FM20ITA.DLL
+ 2006-10-26 11:10 . 2006-10-26 11:10 33088 c:\windows\system32\FM20ENU.DLL
+ 2004-08-11 00:45 . 2004-08-11 00:45 18944 c:\windows\system32\drivers\wpdusb.sys
+ 2006-11-02 05:22 . 2006-11-02 05:22 32224 c:\windows\system32\drivers\wdfldr.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 36736 c:\windows\system32\drivers\ultra.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 32640 c:\windows\system32\drivers\symc8xx.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 16256 c:\windows\system32\drivers\symc810.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 30688 c:\windows\system32\drivers\sym_u3.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 28384 c:\windows\system32\drivers\sym_hi.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 19072 c:\windows\system32\drivers\sparrow.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 49024 c:\windows\system32\drivers\ql1280.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 40448 c:\windows\system32\drivers\ql1240.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 45312 c:\windows\system32\drivers\ql12160.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 33152 c:\windows\system32\drivers\ql10wnt.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 40320 c:\windows\system32\drivers\ql1080.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 27296 c:\windows\system32\drivers\perc2.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 17280 c:\windows\system32\drivers\mraid35x.sys
+ 2006-06-19 21:26 . 2006-06-19 21:26 12672 c:\windows\system32\drivers\mdmxsdk.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 16000 c:\windows\system32\drivers\ini910u.sys
+ 2007-06-25 07:47 . 2007-06-25 07:47 38440 c:\windows\system32\drivers\InCDRm.sys
+ 2007-06-25 07:47 . 2007-06-25 07:47 16040 c:\windows\system32\drivers\InCDrec.sys
+ 2007-06-25 07:47 . 2007-06-25 07:47 36776 c:\windows\system32\drivers\InCDPass.sys
+ 2007-07-04 08:48 . 2007-07-04 08:48 11304 c:\windows\system32\drivers\imagedrv.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 25952 c:\windows\system32\drivers\hpn.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 20192 c:\windows\system32\drivers\dpti2o.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 14720 c:\windows\system32\drivers\dac960nt.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 14976 c:\windows\system32\drivers\cpqarray.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 13952 c:\windows\system32\drivers\cbidf2k.sys
+ 2001-08-17 19:51 . 2001-08-17 19:51 14848 c:\windows\system32\drivers\asc3550.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 22400 c:\windows\system32\drivers\asc3350p.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 26496 c:\windows\system32\drivers\asc.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 12032 c:\windows\system32\drivers\amsint.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 56960 c:\windows\system32\drivers\aic78xx.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 55168 c:\windows\system32\drivers\aic78u2.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 12800 c:\windows\system32\drivers\aha154x.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 23552 c:\windows\system32\drivers\ABP480N5.SYS
+ 2001-08-17 19:52 . 2001-08-17 19:52 36736 c:\windows\system32\dllcache\ultra.sys
+ 2003-04-14 19:04 . 2003-04-14 19:04 16384 c:\windows\system32\dllcache\tcptsat.dll
+ 2003-03-24 13:52 . 2003-03-24 13:52 32827 c:\windows\system32\dllcache\tcptest.exe
+ 2001-08-17 20:07 . 2001-08-17 20:07 32640 c:\windows\system32\dllcache\symc8xx.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 16256 c:\windows\system32\dllcache\symc810.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 30688 c:\windows\system32\dllcache\sym_u3.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 28384 c:\windows\system32\dllcache\sym_hi.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 19072 c:\windows\system32\dllcache\sparrow.sys
+ 2003-03-24 13:52 . 2003-03-24 13:52 16437 c:\windows\system32\dllcache\shtml.exe
+ 2003-03-24 13:52 . 2003-03-24 13:52 20536 c:\windows\system32\dllcache\shtml.dll
+ 2001-08-17 19:52 . 2001-08-17 19:52 49024 c:\windows\system32\dllcache\ql1280.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 40448 c:\windows\system32\dllcache\ql1240.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 45312 c:\windows\system32\dllcache\ql12160.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 33152 c:\windows\system32\dllcache\ql10wnt.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 40320 c:\windows\system32\dllcache\ql1080.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 27296 c:\windows\system32\dllcache\perc2.sys
+ 2007-08-13 16:01 . 2007-08-13 16:01 48128 c:\windows\system32\dllcache\mshtmler.dll
+ 2007-08-13 16:32 . 2007-08-13 16:32 45568 c:\windows\system32\dllcache\mshta.exe
+ 2001-08-17 19:52 . 2001-08-17 19:52 17280 c:\windows\system32\dllcache\mraid35x.sys
+ 2007-08-13 16:44 . 2007-08-13 16:44 40960 c:\windows\system32\dllcache\licmgr10.dll
+ 2007-08-13 16:39 . 2007-08-13 16:39 92672 c:\windows\system32\dllcache\inseng.dll
+ 2001-08-17 19:52 . 2001-08-17 19:52 16000 c:\windows\system32\dllcache\ini910u.sys
+ 2007-08-13 16:36 . 2007-08-13 16:36 36352 c:\windows\system32\dllcache\imgutil.dll
+ 2007-08-13 16:39 . 2007-08-13 16:39 55296 c:\windows\system32\dllcache\iesetup.dll
+ 2007-08-13 16:44 . 2007-08-13 16:44 69120 c:\windows\system32\dllcache\iedw.exe
+ 2001-08-17 20:07 . 2001-08-17 20:07 25952 c:\windows\system32\dllcache\hpn.sys
+ 2007-08-13 16:18 . 2007-08-13 16:18 60416 c:\windows\system32\dllcache\hmmapi.dll
+ 2003-03-24 13:52 . 2003-03-24 13:52 20538 c:\windows\system32\dllcache\fpremadm.exe
+ 2003-03-24 13:52 . 2003-03-24 13:52 20541 c:\windows\system32\dllcache\fpexedll.dll
+ 2002-05-14 11:08 . 2002-05-14 11:08 94208 c:\windows\system32\dllcache\fpencode.dll
+ 2003-03-24 13:52 . 2003-03-24 13:52 20541 c:\windows\system32\dllcache\fpadmdll.dll
+ 2003-03-24 13:52 . 2003-03-24 13:52 24632 c:\windows\system32\dllcache\fpadmcgi.exe
+ 2002-05-14 11:08 . 2002-05-14 11:08 14608 c:\windows\system32\dllcache\fp98sadm.exe
+ 2003-03-24 13:52 . 2003-03-24 13:52 49212 c:\windows\system32\dllcache\fp4awebs.dll
+ 2003-03-24 13:52 . 2003-03-24 13:52 32826 c:\windows\system32\dllcache\fp4avss.dll
+ 2003-03-24 13:52 . 2003-03-24 13:52 41020 c:\windows\system32\dllcache\fp4avnb.dll
+ 2003-03-24 13:52 . 2003-03-24 13:52 49210 c:\windows\system32\dllcache\fp4areg.dll
+ 2003-03-24 13:52 . 2003-03-24 13:52 82035 c:\windows\system32\dllcache\fp4anscp.dll
+ 2001-08-30 21:08 . 2001-08-30 21:08 57856 c:\windows\system32\dllcache\EXCH_scripto.dll
+ 2001-08-30 21:08 . 2001-08-30 21:08 23040 c:\windows\system32\dllcache\EXCH_regtrace.exe
+ 2001-08-17 20:07 . 2001-08-17 20:07 20192 c:\windows\system32\dllcache\dpti2o.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 14720 c:\windows\system32\dllcache\dac960nt.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 14976 c:\windows\system32\dllcache\cpqarray.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 13952 c:\windows\system32\dllcache\cbidf2k.sys
+ 2003-03-24 13:52 . 2003-03-24 13:52 16439 c:\windows\system32\dllcache\author.exe
+ 2003-03-24 13:52 . 2003-03-24 13:52 20540 c:\windows\system32\dllcache\author.dll
+ 2001-08-17 19:51 . 2001-08-17 19:51 14848 c:\windows\system32\dllcache\asc3550.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 22400 c:\windows\system32\dllcache\asc3350p.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 26496 c:\windows\system32\dllcache\asc.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 12032 c:\windows\system32\dllcache\amsint.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 56960 c:\windows\system32\dllcache\aic78xx.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 55168 c:\windows\system32\dllcache\aic78u2.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 12800 c:\windows\system32\dllcache\aha154x.sys
+ 2007-08-13 16:39 . 2007-08-13 16:39 71680 c:\windows\system32\dllcache\admparse.dll
+ 2003-03-24 13:52 . 2003-03-24 13:52 16439 c:\windows\system32\dllcache\admin.exe
+ 2003-03-24 13:52 . 2003-03-24 13:52 20540 c:\windows\system32\dllcache\admin.dll
+ 2001-08-17 19:52 . 2001-08-17 19:52 23552 c:\windows\system32\dllcache\abp480n5.sys
+ 2007-08-13 16:39 . 2007-08-13 16:39 71680 c:\windows\system32\admparse.dll
+ 2006-07-21 23:14 . 2006-07-21 23:14 86016 c:\windows\SoundMan.exe
+ 2007-04-21 00:56 . 2007-04-21 00:56 20480 c:\windows\RunXMLPL.exe
+ 2006-10-26 18:08 . 2006-10-26 18:08 74304 c:\windows\modem\Setup.exe
+ 2006-06-19 21:26 . 2006-06-19 21:26 12672 c:\windows\modem\MDMXSDK.sys
+ 2006-06-19 21:26 . 2006-06-19 21:26 94208 c:\windows\modem\MdmXSdk.dll
+ 2006-10-26 16:58 . 2006-10-26 16:58 75264 c:\windows\modem\agsetup2.dll
+ 2006-10-26 16:58 . 2006-10-26 16:58 29184 c:\windows\modem\agsetup1.dll
+ 2006-10-26 18:08 . 2006-10-26 18:08 50752 c:\windows\modem\agrsmdel.exe
+ 2006-09-11 19:34 . 2006-09-11 19:34 13312 c:\windows\modem\agrscoin.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 22528 c:\windows\Microsoft.NET\Framework\v2.0.50727\MUI\0410\mscorsecr.dll
+ 2005-12-09 09:46 . 2005-12-09 09:46 84480 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - ITA\install.res.1040.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 81920 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Web.Services.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 77824 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Web.Mobile.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 16384 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Transactions.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.ServiceProcess.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Security.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 11776 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Runtime.Serialization.Formatters.Soap.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Runtime.Remoting.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 61440 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Messaging.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 13312 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Management.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 32768 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.EnterpriseServices.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 24576 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Drawing.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.DirectoryServices.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.DirectoryServices.Protocols.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\system.data.sqlxml.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 49152 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Configuration.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 28672 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Configuration.Install.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 10752 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\sysglobl.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 86016 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\ShFusRes.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 11264 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\Regasm.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 12800 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\MSBuild.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 61440 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\Microsoft.VisualBasic.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 45056 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\Microsoft.JScript.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 10240 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\Microsoft.Build.Utilities.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 53248 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\Microsoft.Build.Engine.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 36864 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\caspol.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 40960 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\aspnet_regsql.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 82432 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\aspnet_rc.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 22528 c:\windows\Microsoft.NET\Framework\v2.0.50727\1040\alinkui.dll
+ 2004-07-15 00:11 . 2004-07-15 00:11 31744 c:\windows\Microsoft.NET\Framework\v1.1.4322\WMINet_Utils.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 57344 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.RegularExpressions.dll
+ 2004-07-14 22:35 . 2004-07-14 22:35 66560 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.EnterpriseServices.Thunk.dll
+ 2003-02-21 05:26 . 2003-02-21 05:26 65536 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Drawing.Design.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 90112 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.DirectoryServices.dll
+ 2003-02-21 05:26 . 2003-02-21 05:26 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Configuration.Install.dll
+ 2004-07-14 22:34 . 2004-07-14 22:34 94208 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW536\_PerfCounter.dll
+ 2003-02-20 17:09 . 2003-02-20 17:09 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW536\_mscorsn.dll
+ 2004-07-14 22:32 . 2004-07-14 22:32 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW536\_CORPerfMonExt.dll
+ 2003-02-21 05:25 . 2003-02-21 05:25 12288 c:\windows\Microsoft.NET\Framework\v1.1.4322\RegSvcs.exe
+ 2004-07-15 12:28 . 2004-07-15 12:28 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\RegCode.dll
+ 2003-02-21 05:25 . 2003-02-21 05:25 28672 c:\windows\Microsoft.NET\Framework\v1.1.4322\RegAsm.exe
+ 2004-07-14 22:34 . 2004-07-14 22:34 94208 c:\windows\Microsoft.NET\Framework\v1.1.4322\PerfCounter.dll
+ 2003-02-20 17:09 . 2003-02-20 17:09 73728 c:\windows\Microsoft.NET\Framework\v1.1.4322\ngen.exe
+ 2007-01-15 14:11 . 2007-01-15 14:11 73728 c:\windows\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe
+ 2003-02-20 16:43 . 2003-02-20 16:43 22528 c:\windows\Microsoft.NET\Framework\v1.1.4322\MUI\0409\mscorsecr.dll
+ 2003-02-20 17:18 . 2003-02-20 17:18 20480 c:\windows\Microsoft.NET\Framework\v1.1.4322\mtxoci8.dll
+ 2004-07-14 22:33 . 2004-07-14 22:33 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsec.dll
+ 2003-02-20 17:06 . 2003-02-20 17:06 65536 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorpe.dll
+ 2004-07-14 22:32 . 2004-07-14 22:32 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscordbc.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\MigPolWin.exe
+ 2004-07-15 12:28 . 2004-07-15 12:28 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\MigPol.exe
+ 2003-02-21 05:25 . 2003-02-21 05:25 11264 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.Vsa.Vb.CodeDOMProcessor.dll
+ 2003-02-21 05:24 . 2003-02-21 05:24 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.Vsa.dll
+ 2003-02-21 05:24 . 2003-02-21 05:24 28672 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.VisualBasic.Vsa.dll
+ 2003-02-21 05:24 . 2003-02-21 05:24 40960 c:\windows\Microsoft.NET\Framework\v1.1.4322\jsc.exe
+ 2003-02-21 05:24 . 2003-02-21 05:24 26112 c:\windows\Microsoft.NET\Framework\v1.1.4322\ISymWrapper.dll
+ 2003-02-20 17:22 . 2003-02-20 17:22 40960 c:\windows\Microsoft.NET\Framework\v1.1.4322\InstallUtilLib.dll
+ 2003-02-21 05:24 . 2003-02-21 05:24 15872 c:\windows\Microsoft.NET\Framework\v1.1.4322\InstallUtil.exe
+ 2004-07-15 12:31 . 2004-07-15 12:31 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\IEHost.dll
+ 2003-10-08 12:30 . 2003-10-08 12:30 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\gacutil.exe
+ 2003-02-21 02:12 . 2003-02-21 02:12 28672 c:\windows\Microsoft.NET\Framework\v1.1.4322\cvtres.exe
+ 2003-02-21 05:24 . 2003-02-21 05:24 33792 c:\windows\Microsoft.NET\Framework\v1.1.4322\CustomMarshalers.dll
+ 2003-02-21 05:24 . 2003-02-21 05:24 12288 c:\windows\Microsoft.NET\Framework\v1.1.4322\cscompmgd.dll
+ 2004-07-15 09:23 . 2004-07-15 09:23 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\csc.exe
+ 2003-02-21 05:24 . 2003-02-21 05:24 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\ConfigWizards.exe
+ 2003-02-21 05:24 . 2003-02-21 05:24 94208 c:\windows\Microsoft.NET\Framework\v1.1.4322\CasPol.exe
+ 2004-07-14 23:49 . 2004-07-14 23:49 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
+ 2004-07-14 23:49 . 2004-07-14 23:49 20480 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_regiis.exe
+ 2003-02-20 17:19 . 2003-02-20 17:19 40960 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_rc.dll
+ 2003-02-21 03:00 . 2003-02-21 03:00 98304 c:\windows\Microsoft.NET\Framework\v1.1.4322\alink.dll
+ 2003-02-21 01:55 . 2003-02-21 01:55 94208 c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\cscompui.dll
+ 2003-02-21 00:59 . 2003-02-21 00:59 16896 c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\alinkui.dll
+ 2001-06-05 15:13 . 2001-06-05 15:13 40972 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.8173\OCRVC.DAT
+ 2001-10-23 07:13 . 2001-10-23 07:13 53260 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.8173\OCRHC.DAT
+ 2001-06-05 15:13 . 2001-06-05 15:13 65536 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.8173\LOOKUP.DAT
+ 2001-06-05 15:13 . 2001-06-05 15:13 18844 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.8173\JFONT.DAT
+ 2001-06-05 15:13 . 2001-06-05 15:13 34168 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.8173\ENGIDX.DAT
+ 2003-01-17 21:03 . 2003-01-17 21:03 59466 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\XSCAN32.DAT
+ 2003-07-15 05:57 . 2003-07-15 05:57 59960 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\UNBIND.EXE
+ 2002-10-07 16:49 . 2002-10-07 16:49 81983 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\TWRECS.DLL
+ 2003-07-15 06:00 . 2003-07-15 06:00 99904 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\TRANSMGR.DLL
+ 2003-07-15 05:53 . 2003-07-15 05:53 11848 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\SMARTTAGINSTALL.EXE
+ 2003-07-14 21:57 . 2003-07-14 21:57 58944 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\SEQCHK10.DLL
+ 2003-07-15 05:44 . 2003-07-15 05:44 66616 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\SENDTO.DLL
+ 2003-07-15 05:43 . 2003-07-15 05:43 74288 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\RM.DLL
+ 2002-10-07 16:49 . 2002-10-07 16:49 81984 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\REVERSE.DLL
+ 2003-07-15 05:57 . 2003-07-15 05:57 40512 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\REFIEBAR.DLL
+ 2003-05-09 04:54 . 2003-05-09 04:54 77824 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\REFEDIT.DLL
+ 2003-07-15 05:42 . 2003-07-15 05:42 37432 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\RECALL.DLL
+ 2003-07-15 05:40 . 2003-07-15 05:40 51256 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\PUBTRAP.DLL
+ 2003-07-15 10:18 . 2003-07-15 10:18 93752 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\PP7X32.DLL
+ 2003-07-15 05:43 . 2003-07-15 05:43 49208 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OUTLWAB.DLL
+ 2003-07-15 05:43 . 2003-07-15 05:43 64056 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OUTLRPC.DLL
+ 2003-07-15 05:44 . 2003-07-15 05:44 88128 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OUTLMIME.DLL
+ 2003-07-15 05:41 . 2003-07-15 05:41 24640 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OUTLACCT.DLL
+ 2003-07-14 21:53 . 2003-07-14 21:53 95792 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OSA.EXE
+ 2003-07-15 10:14 . 2003-07-15 10:14 27192 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OISCTRL.DLL
+ 2003-07-15 05:56 . 2003-07-15 05:56 13888 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\NPOFFICE.DLL
+ 2003-07-15 05:57 . 2003-07-15 05:57 56888 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\NAME.DLL
+ 2003-07-15 05:52 . 2003-07-15 05:52 41528 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSSH.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 16384 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSPGIMME.DLL
+ 2003-07-15 05:45 . 2003-07-15 05:45 39488 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSOXMLMF.DLL
+ 2003-07-15 05:45 . 2003-07-15 05:45 55360 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSOXMLED.EXE
+ 2003-07-15 05:46 . 2003-07-15 05:46 42040 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSOXEV.DLL
+ 2003-07-15 05:53 . 2003-07-15 05:53 39488 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSOSVFBR.DLL
+ 2003-07-15 05:53 . 2003-07-15 05:53 55872 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSOSVABW.DLL
+ 2003-07-15 05:52 . 2003-07-15 05:52 35896 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSOSV.DLL
+ 2003-07-14 21:52 . 2003-07-14 21:52 28224 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSOSTYLE.DLL
+ 2003-07-15 05:56 . 2003-07-15 05:56 54328 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSOMSE.DLL
+ 2003-07-15 05:52 . 2003-07-15 05:52 55360 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSOHTMED.EXE
+ 2003-07-15 05:44 . 2003-07-15 05:44 25144 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSOEURO.DLL
+ 2003-07-15 05:52 . 2003-07-15 05:52 27704 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSODCW.DLL
+ 2003-07-15 05:52 . 2003-07-15 05:52 17464 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSMH.DLL
+ 2003-07-15 05:51 . 2003-07-15 05:51 87104 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSENCODE.DLL
+ 2003-07-15 05:56 . 2003-07-15 05:56 40504 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSE7.EXE
+ 2003-07-15 06:12 . 2003-07-15 06:12 47872 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSB1XTOR.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 35328 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MDIUI.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 18944 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MDIPPR.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 17920 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MDIMON.DLL
+ 2003-07-15 05:45 . 2003-07-15 05:45 58944 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\INLAUNCH.DLL
+ 2003-07-14 21:57 . 2003-07-14 21:57 87096 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\IEAWSDC.DLL
+ 2003-07-15 05:41 . 2003-07-15 05:41 13368 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\FINDER.EXE
+ 2003-07-15 05:57 . 2003-07-15 05:57 98360 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\DSSM.EXE
+ 2003-07-15 05:56 . 2003-07-15 05:56 14904 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\DSITF.DLL
+ 2003-07-26 01:57 . 2003-07-26 01:57 75832 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\DLGSETP.DLL
+ 2003-07-15 10:18 . 2003-07-15 10:18 47160 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\DFUICOM.EXE
+ 2003-07-14 21:53 . 2003-07-14 21:53 46144 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\BLNMGRPS.DLL
+ 2003-07-14 21:53 . 2003-07-14 21:53 60984 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\BLNMGR.DLL
+ 2003-07-15 05:53 . 2003-07-15 05:53 94768 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\AW.DLL
+ 2003-07-15 05:57 . 2003-07-15 05:57 38968 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\AUTHZAX.DLL
+ 2003-07-15 05:43 . 2003-07-15 05:43 87616 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\ADDRPARS.DLL
+ 2007-08-13 16:36 . 2007-08-13 16:36 44544 c:\windows\ie7updates\KB950759-IE7\pngfilt.dll
+ 2007-08-13 16:39 . 2007-08-13 16:39 13312 c:\windows\ie7updates\KB950759-IE7\ieudinit.exe
+ 2007-08-13 16:39 . 2007-08-13 16:39 43008 c:\windows\ie7updates\KB950759-IE7\iernonce.dll
+ 2007-08-13 16:39 . 2007-08-13 16:39 54784 c:\windows\ie7updates\KB950759-IE7\ie4uinit.exe
+ 2007-08-13 16:36 . 2007-08-13 16:36 61952 c:\windows\ie7updates\KB950759-IE7\icardie.dll
+ 2005-05-04 01:43 . 2005-05-04 01:43 69632 c:\windows\Alcmtr.exe
+ 2006-11-02 05:22 . 2006-11-02 05:22 51680 c:\windows\$NtUninstallWdf01005$\spuninst\Kmdfcustom.dll
+ 2007-03-06 01:48 . 2007-03-06 01:48 22752 c:\windows\$hf_mig$\KB950759-IE7\update\spcustom.dll
+ 2007-03-06 01:48 . 2007-03-06 01:48 15584 c:\windows\$hf_mig$\KB950759-IE7\spmsg.dll
+ 2001-08-30 21:08 . 2001-08-30 21:08 8192 c:\windows\system32\streamci.dll
+ 2002-09-13 13:41 . 2002-09-13 13:41 4524 c:\windows\system32\oembios.dat
+ 2005-12-09 16:50 . 2005-12-09 16:50 6656 c:\windows\system32\mui\0410\mscorees.dll
+ 2003-02-20 16:43 . 2003-02-20 16:43 4096 c:\windows\system32\mui\0409\mscoreer.dll
+ 1999-03-24 15:27 . 1999-03-24 15:27 8192 c:\windows\system32\MSPRPIT.DLL
+ 2001-08-30 21:07 . 2001-08-30 21:07 8192 c:\windows\system32\kbdkor.dll
+ 2001-08-30 21:07 . 2001-08-30 21:07 8704 c:\windows\system32\kbdjpn.dll
+ 2001-08-17 20:55 . 2001-08-17 20:55 5632 c:\windows\system32\kbd103.dll
+ 2001-08-17 20:55 . 2001-08-17 20:55 6144 c:\windows\system32\kbd101c.dll
+ 2001-08-17 20:55 . 2001-08-17 20:55 6144 c:\windows\system32\kbd101b.dll
+ 2001-08-30 18:10 . 2001-08-30 18:10 4992 c:\windows\system32\drivers\toside.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 5504 c:\windows\system32\drivers\perc2hib.sys
+ 2001-08-30 19:54 . 2001-08-30 19:54 3328 c:\windows\system32\drivers\pciide.sys
+ 2001-08-17 21:46 . 2001-08-17 21:46 6400 c:\windows\system32\drivers\enum1394.sys
+ 2001-08-30 18:37 . 2001-08-30 18:37 6656 c:\windows\system32\drivers\cmdide.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 7680 c:\windows\system32\drivers\cd20xrnt.sys
+ 2001-08-17 21:59 . 2001-08-17 21:59 3072 c:\windows\system32\drivers\audstub.sys
+ 2001-08-17 19:51 . 2001-08-17 19:51 5248 c:\windows\system32\drivers\aliide.sys
+ 2001-08-30 21:08 . 2001-08-30 21:08 8192 c:\windows\system32\dllcache\streamci.dll
+ 2001-08-17 20:07 . 2001-08-17 20:07 5504 c:\windows\system32\dllcache\perc2hib.sys
+ 2001-08-30 19:54 . 2001-08-30 19:54 3328 c:\windows\system32\dllcache\pciide.sys
+ 2002-09-13 13:41 . 2002-09-13 13:41 4524 c:\windows\system32\dllcache\oembios.dat
+ 2001-08-30 21:07 . 2001-08-30 21:07 8192 c:\windows\system32\dllcache\kbdkor.dll
+ 2001-08-30 21:07 . 2001-08-30 21:07 8704 c:\windows\system32\dllcache\kbdjpn.dll
+ 2001-08-17 20:55 . 2001-08-17 20:55 5632 c:\windows\system32\dllcache\kbd103.dll
+ 2001-08-17 20:55 . 2001-08-17 20:55 6144 c:\windows\system32\dllcache\kbd101c.dll
+ 2001-08-17 20:55 . 2001-08-17 20:55 6144 c:\windows\system32\dllcache\kbd101b.dll
+ 2001-08-30 18:37 . 2001-08-30 18:37 6656 c:\windows\system32\dllcache\cmdide.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 7680 c:\windows\system32\dllcache\cd20xrnt.sys
+ 2001-08-17 19:51 . 2001-08-17 19:51 5248 c:\windows\system32\dllcache\aliide.sys
+ 2006-06-09 16:38 . 2006-06-09 16:38 6909 c:\windows\modem\UIUSYS.sys
+ 2006-10-05 17:10 . 2006-10-05 17:10 9216 c:\windows\modem\agrsmsvc.exe
+ 2005-12-09 16:50 . 2005-12-09 16:50 6144 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Drawing.Design.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 7168 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\JSC.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 4096 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\InstallUtil.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 5632 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\aspnet_regbrowsers.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 8704 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\aspnet_compiler.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 9216 c:\windows\Microsoft.NET\Framework\v2.0.50727\GAC\it\Microsoft.VisualBasic.Compatibility.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 9216 c:\windows\Microsoft.NET\Framework\v2.0.50727\GAC\it\Microsoft.VisualBasic.Compatibility.Data.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 5120 c:\windows\Microsoft.NET\Framework\v2.0.50727\1040\CvtResUI.dll
+ 2003-02-20 17:09 . 2003-02-20 17:09 9216 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscortim.dll
+ 2003-02-21 05:25 . 2003-02-21 05:25 6656 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft_VsaVb.dll
+ 2003-02-21 05:25 . 2003-02-21 05:25 6144 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.VisualC.Dll
+ 2003-02-21 05:24 . 2003-02-21 05:24 4608 c:\windows\Microsoft.NET\Framework\v1.1.4322\IIEHost.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 8192 c:\windows\Microsoft.NET\Framework\v1.1.4322\IEExecRemote.dll
+ 2003-02-21 05:24 . 2003-02-21 05:24 7680 c:\windows\Microsoft.NET\Framework\v1.1.4322\IEExec.exe
+ 2003-02-21 05:24 . 2003-02-21 05:24 7680 c:\windows\Microsoft.NET\Framework\v1.1.4322\Accessibility.dll
+ 2002-05-14 07:42 . 2002-05-14 07:42 5120 c:\windows\Microsoft.NET\Framework\sbs_wminet_utils.dll
+ 2002-06-27 10:45 . 2002-06-27 10:45 5120 c:\windows\Microsoft.NET\Framework\sbs_VsaVb7rt.dll
+ 2002-05-14 07:42 . 2002-05-14 07:42 5120 c:\windows\Microsoft.NET\Framework\sbs_system.enterpriseservices.dll
+ 2002-05-14 07:42 . 2002-05-14 07:42 5120 c:\windows\Microsoft.NET\Framework\sbs_system.data.dll
+ 2002-05-14 07:42 . 2002-05-14 07:42 5120 c:\windows\Microsoft.NET\Framework\sbs_system.configuration.install.dll
+ 2002-05-14 07:42 . 2002-05-14 07:42 5120 c:\windows\Microsoft.NET\Framework\sbs_mscorsec.dll
+ 2002-07-19 09:52 . 2002-07-19 09:52 5120 c:\windows\Microsoft.NET\Framework\sbs_mscorrc.dll
+ 2002-05-14 07:42 . 2002-05-14 07:42 5120 c:\windows\Microsoft.NET\Framework\sbs_mscordbi.dll
+ 2002-05-14 07:42 . 2002-05-14 07:42 5632 c:\windows\Microsoft.NET\Framework\sbs_microsoft.vsa.vb.codedomprocessor.dll
+ 2002-05-14 07:42 . 2002-05-14 07:42 5120 c:\windows\Microsoft.NET\Framework\sbs_microsoft.jscript.dll
+ 2002-05-14 07:42 . 2002-05-14 07:42 5120 c:\windows\Microsoft.NET\Framework\sbs_iehost.dll
+ 2002-05-14 07:42 . 2002-05-14 07:42 5120 c:\windows\Microsoft.NET\Framework\sbs_diasymreader.dll
+ 2003-06-19 00:31 . 2003-06-19 00:31 6144 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OCRPS.DLL
+ 2005-09-23 16:16 . 2005-09-23 16:16 102400 c:\windows\WinSxS\x86_Microsoft.VC80.DebugMFC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_c8452471\mfcm80ud.dll
+ 2005-09-23 16:16 . 2005-09-23 16:16 114688 c:\windows\WinSxS\x86_Microsoft.VC80.DebugMFC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_c8452471\mfcm80d.dll
+ 2006-12-01 21:54 . 2006-12-01 21:54 626688 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll
+ 2006-12-01 21:54 . 2006-12-01 21:54 548864 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcp80.dll
+ 2006-12-01 21:54 . 2006-12-01 21:54 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcm80.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 626688 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcr80.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 548864 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcp80.dll
+ 2005-09-23 05:29 . 2005-09-23 05:29 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_0de06acd\msvcm80.dll
+ 2006-06-05 12:14 . 2006-06-05 12:14 626688 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcr80.dll
+ 2006-06-05 12:14 . 2006-06-05 12:14 548864 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcp80.dll
+ 2006-06-05 12:14 . 2006-06-05 12:14 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.163_x-ww_681e29fb\msvcm80.dll
+ 2007-04-23 15:42 . 2007-04-23 15:42 972336 c:\windows\UNRecode.exe
+ 2007-06-26 13:12 . 2007-06-26 13:12 972072 c:\windows\UNNeroVision.exe
+ 2007-02-28 15:41 . 2007-02-28 15:41 972336 c:\windows\UNNeroShowTime.exe
+ 2007-06-27 18:05 . 2007-06-27 18:05 972072 c:\windows\UNNeroMediaHome.exe
+ 2007-03-20 20:22 . 2007-03-20 20:22 972336 c:\windows\UNNeroBackItUp.exe
+ 2004-08-11 00:45 . 2004-08-11 00:45 327680 c:\windows\system32\wpdsp.dll
+ 2004-08-11 00:45 . 2004-08-11 00:45 331776 c:\windows\system32\wpdmtpdr.dll
+ 2004-08-11 00:45 . 2004-08-11 00:45 114176 c:\windows\system32\wpdmtp.dll
+ 2004-08-11 00:45 . 2004-08-11 00:45 290816 c:\windows\system32\WMDRMNet.dll
+ 2004-08-11 00:45 . 2004-08-11 00:45 344064 c:\windows\system32\WMDRMdev.dll
+ 2002-08-21 04:13 . 2002-08-21 04:13 189952 c:\windows\system32\WISPTIS.EXE
+ 2007-08-13 16:45 . 2007-08-13 16:45 206336 c:\windows\system32\WinFXDocObj.exe
+ 1998-08-04 23:00 . 1998-08-04 23:00 102912 c:\windows\system32\VB6STKIT.DLL
+ 1998-08-04 23:00 . 1998-08-04 23:00 122128 c:\windows\system32\VB6IT.DLL
+ 2003-02-21 02:42 . 2003-02-21 02:42 348160 c:\windows\system32\URTTemp\msvcr71.dll
+ 2003-02-20 17:06 . 2003-02-20 17:06 155648 c:\windows\system32\URTTemp\mscoree.dll
+ 2003-02-20 17:06 . 2003-02-20 17:06 282624 c:\windows\system32\URTTemp\fusion.dll
+ 2006-12-21 00:37 . 2006-12-21 00:37 176128 c:\windows\system32\UCI32M16.dll
+ 2004-07-09 08:43 . 2004-07-09 08:43 364544 c:\windows\system32\TwnLib4.dll
+ 2006-08-24 14:15 . 2006-08-24 14:15 150808 c:\windows\system32\rgb9rast_2.dll
+ 2000-04-03 16:52 . 2000-04-03 16:52 151552 c:\windows\system32\RDOCURS.DLL
+ 2007-03-09 02:05 . 2007-03-09 02:05 304784 c:\windows\system32\oem\Setup.exe
+ 2003-03-19 04:14 . 2003-03-19 04:14 499712 c:\windows\system32\msvcp71.dll
+ 2000-05-24 05:45 . 2000-05-24 05:45 118784 c:\windows\system32\MSSTDFMT.DLL
+ 2000-05-11 12:06 . 2000-05-11 12:06 397312 c:\windows\system32\MSRDO20.DLL
+ 2002-08-21 04:10 . 2002-08-21 04:10 204800 c:\windows\system32\INKED.DLL
+ 2004-07-26 16:16 . 2004-07-26 16:16 471040 c:\windows\system32\imagXRA7.dll
+ 2004-07-26 16:16 . 2004-07-26 16:16 262144 c:\windows\system32\imagXR7.dll
+ 2004-07-26 16:16 . 2004-07-26 16:16 476320 c:\windows\system32\imagXpr7.dll
+ 2001-07-23 20:04 . 2001-07-23 20:04 118784 c:\windows\system32\HMPV2_ENC_MMX.dll
+ 2001-07-30 14:33 . 2001-07-30 14:33 118784 c:\windows\system32\HMPV2_ENC.dll
+ 2001-09-03 21:46 . 2001-09-03 21:46 110592 c:\windows\system32\Hmpg12.dll
+ 2006-11-02 05:22 . 2006-11-02 05:22 492000 c:\windows\system32\drivers\wdf01000.sys
+ 2007-06-25 07:47 . 2007-06-25 07:47 119080 c:\windows\system32\drivers\InCDfs.sys
+ 2007-07-04 08:48 . 2007-07-04 08:48 132904 c:\windows\system32\drivers\imagesrv.sys
+ 2006-12-22 18:56 . 2006-12-22 18:56 209664 c:\windows\system32\drivers\HSFHWAZL.sys
+ 2006-12-22 18:56 . 2006-12-22 18:56 988800 c:\windows\system32\drivers\HSF_DPV.sys
+ 2006-12-22 18:55 . 2006-12-22 18:55 730112 c:\windows\system32\drivers\HSF_CNXT.sys
+ 2001-08-30 20:03 . 2001-08-30 20:03 125824 c:\windows\system32\drivers\ftdisk.sys
+ 2001-08-17 19:52 . 2001-08-17 19:52 179584 c:\windows\system32\drivers\dac2w2k.sys
+ 2001-08-17 20:07 . 2001-08-17 20:07 101888 c:\windows\system32\drivers\adpu160m.sys
+ 2007-08-13 16:54 . 2008-05-27 17:23 765952 c:\windows\system32\dllcache\vgx.dll
+ 2007-08-13 16:54 . 2007-08-13 16:54 156160 c:\windows\system32\dllcache\msls31.dll
+ 2001-08-30 20:03 . 2001-08-30 20:03 125824 c:\windows\system32\dllcache\ftdisk.sys
+ 2003-04-14 19:04 . 2003-04-14 19:04 217088 c:\windows\system32\dllcache\fpmmcsat.dll
+ 2004-05-12 22:39 . 2004-05-12 22:39 598071 c:\windows\system32\dllcache\fpmmc.dll
+ 2003-03-24 13:52 . 2003-03-24 13:52 188494 c:\windows\system32\dllcache\fpcount.exe
+ 2002-05-14 11:08 . 2002-05-14 11:08 109328 c:\windows\system32\dllcache\fp98swin.exe
+ 2004-05-12 22:39 . 2004-05-12 22:39 876653 c:\windows\system32\dllcache\fp4awel.dll
+ 2003-03-24 13:52 . 2003-03-24 13:52 618605 c:\windows\system32\dllcache\fp4autl.dll
+ 2003-03-24 13:52 . 2003-03-24 13:52 102509 c:\windows\system32\dllcache\fp4atxt.dll
+ 2003-03-24 13:52 . 2003-03-24 13:52 147513 c:\windows\system32\dllcache\fp4apws.dll
+ 2004-05-12 22:39 . 2004-05-12 22:39 184435 c:\windows\system32\dllcache\fp4amsft.dll
+ 2001-08-17 19:52 . 2001-08-17 19:52 179584 c:\windows\system32\dllcache\dac2w2k.sys
+ 2003-03-24 13:52 . 2003-03-24 13:52 188480 c:\windows\system32\dllcache\cfgwiz.exe
+ 2001-08-17 20:07 . 2001-08-17 20:07 101888 c:\windows\system32\dllcache\adpu160m.sys
+ 2006-11-10 07:25 . 2006-11-10 16:25 319456 c:\windows\system32\difxapi.dll
+ 2007-06-25 07:47 . 2007-06-25 07:47 238888 c:\windows\NuNInst.exe
+ 2006-06-09 17:36 . 2006-06-09 17:36 188416 c:\windows\modem\UIUDLL.dll
+ 2006-12-08 22:47 . 2006-12-08 22:47 741376 c:\windows\modem\UIU32m.exe
+ 2006-12-21 00:37 . 2006-12-21 00:37 176128 c:\windows\modem\UCI32M16.dll
+ 2006-12-22 18:56 . 2006-12-22 18:56 209664 c:\windows\modem\HSFHWAZL.sys
+ 2006-12-22 18:56 . 2006-12-22 18:56 988800 c:\windows\modem\HSF_DPV.sys
+ 2006-12-22 18:55 . 2006-12-22 18:55 730112 c:\windows\modem\HSF_CNXT.sys
+ 2005-12-09 11:26 . 2005-12-09 11:26 245408 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - ITA\unicows.dll
+ 2005-12-09 09:46 . 2005-12-09 09:46 609472 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - ITA\install.exe
+ 2005-12-09 16:50 . 2005-12-09 16:50 163840 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.xml.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 425984 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Windows.Forms.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 598016 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Web.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 204800 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\system.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 540672 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Design.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 380928 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Deployment.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 327680 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Data.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 110592 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\System.Data.OracleClient.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 389632 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\mscorrc.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 303104 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\mscorlib.Resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 139264 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\Microsoft.Build.Tasks.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 315392 c:\windows\Microsoft.NET\Framework\v2.0.50727\it\aspnetmmcext.resources.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 241664 c:\windows\Microsoft.NET\Framework\v2.0.50727\1040\Vsavb7rtUI.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 212992 c:\windows\Microsoft.NET\Framework\v2.0.50727\1040\vbc7ui.dll
+ 2005-12-09 16:50 . 2005-12-09 16:50 161792 c:\windows\Microsoft.NET\Framework\v2.0.50727\1040\cscompui.dll
+ 2004-07-15 09:23 . 2004-07-15 09:23 737280 c:\windows\Microsoft.NET\Framework\v1.1.4322\vbc.exe
+ 2004-07-15 12:31 . 2004-07-15 12:31 573440 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.Services.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 819200 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.Mobile.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 126976 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.ServiceProcess.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 131072 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 323584 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Remoting.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 241664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Messaging.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 372736 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Management.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 241664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.EnterpriseServices.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 466944 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Drawing.dll
+ 2004-07-15 12:31 . 2004-07-15 12:31 303104 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Data.OracleClient.dll
+ 2004-07-14 22:35 . 2004-07-14 22:35 319488 c:\windows\Microsoft.NET\Framework\v1.1.4322\SOS.dll
+ 2003-02-20 17:09 . 2003-02-20 17:09 122880 c:\windows\Microsoft.NET\Framework\v1.1.4322\shfusres.dll
+ 2003-02-20 17:09 . 2003-02-20 17:09 253952 c:\windows\Microsoft.NET\Framework\v1.1.4322\shfusion.dll
+ 2003-02-21 02:42 . 2003-02-21 02:42 348160 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW536\_msvcr71.dll
+ 2004-07-14 22:25 . 2004-07-14 22:25 315392 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW536\_mscorjit.dll
+ 2004-07-14 22:24 . 2004-07-14 22:24 282624 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW536\_fusion.dll
+ 2004-07-14 23:49 . 2004-07-14 23:49 258048 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW536\_aspnet_isapi.dll
+ 2003-02-21 02:42 . 2003-02-21 02:42 348160 c:\windows\Microsoft.NET\Framework\v1.1.4322\msvcr71.dll
+ 2004-07-14 22:33 . 2004-07-14 22:33 143360 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorrc.dll
+ 2003-02-20 16:43 . 2003-02-20 16:43 131072 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscormmc.dll
+ 2004-07-14 22:32 . 2004-07-14 22:32 233472 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscordbi.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 299008 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.VisualBasic.dll
+ 2004-07-15 12:28 . 2004-07-15 12:28 720896 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.JScript.dll
+ 2004-07-14 22:35 . 2004-07-14 22:35 196608 c:\windows\Microsoft.NET\Framework\v1.1.4322\ilasm.exe
+ 2004-07-14 22:24 . 2004-07-14 22:24 282624 c:\windows\Microsoft.NET\Framework\v1.1.4322\fusion.dll
+ 2003-02-20 17:16 . 2003-02-20 17:16 798720 c:\windows\Microsoft.NET\Framework\v1.1.4322\EventLogMessages.dll
+ 2003-02-21 08:21 . 2003-02-21 08:21 524288 c:\windows\Microsoft.NET\Framework\v1.1.4322\diasymreader.dll
+ 2004-07-15 09:23 . 2004-07-15 09:23 626688 c:\windows\Microsoft.NET\Framework\v1.1.4322\cscomp.dll
+ 2002-07-29 09:11 . 2002-07-29 09:11 219136 c:\windows\Microsoft.NET\Framework\v1.1.4322\c_g18030.dll
+ 2003-02-21 03:04 . 2003-02-21 03:04 155648 c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\Vsavb7rtUI.dll
+ 2003-02-21 01:02 . 2003-02-21 01:02 131072 c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\vbc7ui.dll
+ 2003-11-24 22:55 . 2003-11-24 22:55 743424 c:\windows\libxml2.dll
+ 2005-05-03 22:06 . 2005-05-03 22:06 199408 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.8173\MSMDUN80.DLL
+ 2005-05-03 22:06 . 2005-05-03 22:06 465640 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.8173\MSDMENG.DLL
+ 2001-06-05 15:13 . 2001-06-05 15:13 289926 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.8173\ENGDIC.DAT
+ 2002-10-07 16:51 . 2002-10-07 16:51 221252 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\TWSTRUCT.DLL
+ 2002-10-07 16:50 . 2002-10-07 16:50 118847 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\TWRECE.DLL
+ 2002-10-07 16:51 . 2002-10-07 16:51 102467 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\TWORIENT.DLL
+ 2002-10-07 16:51 . 2002-10-07 16:51 147520 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\TWLAY32.DLL
+ 2002-10-07 16:51 . 2002-10-07 16:51 180289 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\TWCUTLIN.DLL
+ 2002-10-07 16:50 . 2002-10-07 16:50 241729 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\TWCUTCHR.DLL
+ 2002-10-07 16:53 . 2002-10-07 16:53 106561 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\THOCRAPI.DLL
+ 2003-08-06 20:26 . 2003-08-06 20:26 445488 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\SOA.DLL
+ 2003-08-06 20:31 . 2003-08-06 20:31 362552 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\SETLANG.EXE
+ 2003-07-15 05:57 . 2003-07-15 05:57 349248 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\SELFCERT.EXE
+ 2003-07-21 18:46 . 2003-07-21 18:46 390712 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\RTFHTML.DLL
+ 2003-07-15 05:50 . 2003-07-15 05:50 551480 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\PUBCONV.DLL
+ 2003-07-15 05:51 . 2003-07-15 05:51 604728 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\PTXT9.DLL
+ 2002-10-07 17:11 . 2002-10-07 17:11 167997 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\PSOM.DLL
+ 2003-07-15 05:40 . 2003-07-15 05:40 130104 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\PRTF9.DLL
+ 2003-07-15 10:18 . 2003-07-15 10:18 430136 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\PP4X322.DLL
+ 2003-07-15 05:43 . 2003-07-15 05:43 139320 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OUTLPH.DLL
+ 2003-07-15 05:45 . 2003-07-15 05:45 196152 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OUTLOOK.EXE
+ 2003-07-08 18:48 . 2003-07-08 18:48 115288 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OUTLFLTR.DLL
+ 2003-07-15 05:44 . 2003-07-15 05:44 102968 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OUTLCTL.DLL
+ 2003-07-15 10:14 . 2003-07-15 10:14 242240 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OISGRAPH.DLL
+ 2003-07-15 10:14 . 2003-07-15 10:14 828472 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OISAPP.DLL
+ 2003-07-15 10:14 . 2003-07-15 10:14 283696 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OIS.EXE
+ 2003-07-15 06:00 . 2003-07-15 06:00 145984 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSWEBCAP.DLL
+ 2003-07-24 05:40 . 2003-07-24 05:40 482872 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSTORES.DLL
+ 2003-07-15 05:56 . 2003-07-15 05:56 124984 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSTORE.EXE
+ 2003-07-15 06:02 . 2003-07-15 06:02 627256 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSTORDB.EXE
+ 2003-07-15 06:02 . 2003-07-15 06:02 637496 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSQRY32.EXE
+ 2003-06-19 23:05 . 2003-06-19 23:05 364648 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSPVIEW.EXE
+ 2003-06-19 23:05 . 2003-06-19 23:05 128104 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSPSCAN.EXE
+ 2003-06-19 00:31 . 2003-06-19 00:31 788480 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSPFILT.DLL
+ 2003-07-15 10:18 . 2003-07-15 10:18 376888 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSORUN.DLL
+ 2003-07-23 21:35 . 2003-07-23 21:35 127032 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSOCFU.DLL
+ 2003-07-15 02:14 . 2003-07-15 02:14 106552 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSOCF.DLL
+ 2003-07-14 21:57 . 2003-07-14 21:57 120888 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSOAUTH.DLL
+ 2003-07-15 10:14 . 2003-07-15 10:14 139328 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSJSPP40.DLL
+ 2003-07-14 21:58 . 2003-07-14 21:58 230968 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSCDM.DLL
+ 2003-07-15 05:57 . 2003-07-15 05:57 124480 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSB1CORE.DLL
+ 2003-07-15 10:13 . 2003-07-15 10:13 130112 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSAEXP30.DLL
+ 2003-07-15 06:01 . 2003-07-15 06:01 445496 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MODHELP.DLL
+ 2003-07-15 05:46 . 2003-07-15 05:46 176696 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MIMEDIR.DLL
+ 2003-05-28 22:42 . 2003-05-28 22:42 342616 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\METCONV.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 443904 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MDIVWCTL.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 252928 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MDIINK.DLL
+ 2003-06-19 00:31 . 2003-06-19 00:31 758784 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MDIGRAPH.DLL
+ 2003-05-28 22:42 . 2003-05-28 22:42 514680 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\INTLNAME.DLL
+ 2003-07-24 05:32 . 2003-07-24 05:32 121400 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\IMPMAIL.DLL
+ 2003-07-15 05:53 . 2003-07-15 05:53 161336 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\IETAG.DLL
+ 2003-07-26 02:14 . 2003-07-26 02:14 799288 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\FPWEC.DLL
+ 2003-07-15 05:40 . 2003-07-15 05:40 179768 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\FPERSON.DLL
+ 2003-07-15 06:36 . 2003-07-15 06:36 186424 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\FPDTC.DLL
+ 2002-10-07 16:49 . 2002-10-07 16:49 192573 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\FORM.DLL
+ 2003-07-31 22:19 . 2003-07-31 22:19 131648 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\ENVELOPE.DLL
+ 2003-07-15 02:14 . 2003-07-15 02:14 350264 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\CDLMSO.DLL
+ 2003-07-15 10:13 . 2003-07-15 10:13 166456 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\ACCWIZ.DLL
+ 2007-08-13 16:44 . 2007-08-13 16:44 105984 c:\windows\ie7updates\KB950759-IE7\url.dll
+ 2007-03-06 01:49 . 2007-03-06 01:49 390880 c:\windows\ie7updates\KB950759-IE7\spuninst\updspapi.dll
+ 2007-03-06 01:48 . 2007-03-06 01:48 215776 c:\windows\ie7updates\KB950759-IE7\spuninst\spuninst.exe
+ 2007-08-13 16:44 . 2007-08-13 16:44 101376 c:\windows\ie7updates\KB950759-IE7\occache.dll
+ 2007-08-13 16:44 . 2007-08-13 16:44 192000 c:\windows\ie7updates\KB950759-IE7\msrating.dll
+ 2007-08-13 16:43 . 2007-08-13 16:43 622080 c:\windows\ie7updates\KB950759-IE7\iexplore.exe
+ 2007-08-13 16:34 . 2007-08-13 16:34 266752 c:\windows\ie7updates\KB950759-IE7\iertutil.dll
+ 2007-08-13 16:39 . 2007-08-13 16:39 382976 c:\windows\ie7updates\KB950759-IE7\iedkcs32.dll
+ 2007-07-11 10:27 . 2007-07-11 10:27 383488 c:\windows\ie7updates\KB950759-IE7\ieapfltr.dll
+ 2007-08-13 15:56 . 2007-08-13 15:56 161792 c:\windows\ie7updates\KB950759-IE7\ieakui.dll
+ 2007-08-13 16:39 . 2007-08-13 16:39 229376 c:\windows\ie7updates\KB950759-IE7\ieaksie.dll
+ 2007-08-13 16:39 . 2007-08-13 16:39 152064 c:\windows\ie7updates\KB950759-IE7\ieakeng.dll
+ 2007-08-13 16:35 . 2007-08-13 16:35 214528 c:\windows\ie7updates\KB950759-IE7\dxtrans.dll
+ 2007-08-13 16:35 . 2007-08-13 16:35 346624 c:\windows\ie7updates\KB950759-IE7\dxtmsft.dll
+ 2007-08-13 16:39 . 2007-08-13 16:39 123904 c:\windows\ie7updates\KB950759-IE7\advpack.dll
+ 2006-09-06 15:43 . 2006-09-06 15:43 390880 c:\windows\ie7\spuninst\updspapi.dll
+ 2006-09-06 15:43 . 2006-09-06 15:43 215776 c:\windows\ie7\spuninst\spuninst.exe
+ 2003-11-24 22:55 . 2003-11-24 22:55 872448 c:\windows\iconv.dll
+ 2007-05-25 23:06 . 2008-04-04 00:30 204800 c:\windows\Capsule.dll
+ 2006-10-08 19:51 . 2006-10-08 19:51 379184 c:\windows\$NtUninstallWdf01005$\spuninst\updspapi.dll
+ 2006-10-08 19:51 . 2006-10-08 19:51 221488 c:\windows\$NtUninstallWdf01005$\spuninst\spuninst.exe
+ 2006-05-24 10:32 . 2006-05-24 10:32 371424 c:\windows\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\updspapi.dll
+ 2006-05-24 10:32 . 2006-05-24 10:32 213216 c:\windows\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe
+ 2006-05-25 08:29 . 2006-05-25 08:29 371424 c:\windows\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\updspapi.dll
+ 2006-05-25 08:29 . 2006-05-25 08:29 213216 c:\windows\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe
+ 2007-03-06 01:49 . 2007-03-06 01:49 390880 c:\windows\$hf_mig$\KB950759-IE7\update\updspapi.dll
+ 2007-03-06 01:48 . 2007-03-06 01:48 724192 c:\windows\$hf_mig$\KB950759-IE7\update\update.exe
+ 2007-03-06 01:48 . 2007-03-06 01:48 215776 c:\windows\$hf_mig$\KB950759-IE7\spuninst.exe
+ 2006-12-01 23:25 . 2006-12-01 23:25 1093120 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80u.dll
+ 2006-12-01 23:25 . 2006-12-01 23:25 1101824 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_3bf8fa05\mfc80.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 1079808 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_dec6ddd2\mfc80u.dll
+ 2006-10-26 11:40 . 2006-10-26 11:40 1093632 c:\windows\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_dec6ddd2\mfc80.dll
+ 2005-09-23 16:16 . 2005-09-23 16:16 2379264 c:\windows\WinSxS\x86_Microsoft.VC80.DebugMFC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_c8452471\mfc80ud.dll
+ 2005-09-23 16:16 . 2005-09-23 16:16 2375680 c:\windows\WinSxS\x86_Microsoft.VC80.DebugMFC_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_c8452471\mfc80d.dll
+ 2005-09-23 14:48 . 2005-09-23 14:48 1171456 c:\windows\WinSxS\x86_Microsoft.VC80.DebugCRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_f75eb16c\msvcr80d.dll
+ 2005-09-23 14:48 . 2005-09-23 14:48 1028096 c:\windows\WinSxS\x86_Microsoft.VC80.DebugCRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_f75eb16c\msvcp80d.dll
+ 2005-09-23 14:48 . 2005-09-23 14:48 1015808 c:\windows\WinSxS\x86_Microsoft.VC80.DebugCRT_1fc8b3b9a1e18e3b_8.0.50727.42_x-ww_f75eb16c\msvcm80d.dll
+ 2004-08-11 00:45 . 2004-08-11 00:45 1509376 c:\windows\system32\WMVADVE.DLL
+ 2004-08-11 00:45 . 2004-08-11 00:45 1181944 c:\windows\system32\wmvadvd.dll
+ 2006-11-02 15:09 . 2006-11-02 15:09 1419232 c:\windows\system32\WdfCoinstaller01005.dll
+ 2003-02-20 17:08 . 2003-02-20 17:08 2482176 c:\windows\system32\URTTemp\mscorwks.dll
+ 2006-04-14 08:07 . 2006-04-14 08:07 2222936 c:\windows\system32\sqlncli.dll
+ 2007-03-09 03:43 . 2007-03-09 03:43 3551744 c:\windows\system32\oem\AcroRead.msi
+ 2003-03-19 05:20 . 2003-03-19 05:20 1060864 c:\windows\system32\mfc71.dll
+ 2007-01-17 10:24 . 2007-01-17 10:24 2830336 c:\windows\system32\LS_HSI.msi
+ 2004-07-26 16:16 . 2004-07-26 16:16 1568768 c:\windows\system32\imagX7.dll
+ 2007-04-17 09:32 . 2009-06-29 08:33 2452872 c:\windows\system32\ieapfltr.dat
+ 2006-12-15 17:22 . 2006-12-15 17:22 1712128 c:\windows\system32\GdiPlus.dll
+ 2007-06-06 09:53 . 2007-06-06 09:53 1195888 c:\windows\system32\FM20.DLL
+ 2006-11-02 15:09 . 2006-11-02 15:09 1419232 c:\windows\system32\DRVSTORE\tpchoice_91524E5282C311F7F6282DFD2FE4ADC8C38517F0\WdfCoinstaller01005.dll
+ 2007-04-17 09:32 . 2009-06-29 08:33 2452872 c:\windows\system32\dllcache\ieapfltr.dat
+ 2007-03-24 02:19 . 2007-03-24 02:19 9715200 c:\windows\RTLCPL.exe
+ 2007-03-09 19:56 . 2007-03-09 19:56 1163616 c:\windows\modem\AGRSM.sys
+ 2005-12-09 17:30 . 2005-12-09 17:30 1964544 c:\windows\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - ITA\langpack.msi
+ 2004-07-15 06:15 . 2004-07-15 06:15 1032192 c:\windows\Microsoft.NET\Framework\v1.1.4322\VsaVb7rt.dll
+ 2004-07-15 12:29 . 2004-07-15 12:29 1339392 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.XML.dll
+ 2004-07-15 12:32 . 2004-07-15 12:32 2052096 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Windows.Forms.dll
+ 2004-07-15 12:29 . 2004-07-15 12:29 1703936 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Design.dll
+ 2004-07-15 12:32 . 2004-07-15 12:32 1294336 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Data.dll
+ 2004-07-14 22:28 . 2004-07-14 22:28 2502656 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW536\_mscorwks.dll
+ 2004-07-14 22:26 . 2004-07-14 22:26 2510848 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW536\_mscorsvr.dll
+ 2004-07-15 12:29 . 2004-07-15 12:29 2138112 c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW536\_mscorlib.dll
+ 2003-02-21 05:25 . 2003-02-21 05:25 1564672 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorcfg.dll
+ 2007-06-28 23:44 . 2007-06-28 23:44 2165760 c:\windows\MicCal.exe
+ 2005-10-26 13:59 . 2005-10-26 13:59 2883072 c:\windows\Installer\614d1d.msp
+ 2006-09-26 19:01 . 2006-09-26 19:01 2113536 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.8173\MSOLAP80.DLL
+ 2005-05-03 22:06 . 2005-05-03 22:06 1411816 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.8173\MSDMINE.DLL
+ 2003-04-30 18:52 . 2003-04-30 18:52 1581120 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\XPAGE3C.DLL
+ 2002-10-07 17:03 . 2002-10-07 17:03 1794113 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\XIMAGE3B.DLL
+ 2003-07-03 22:19 . 2003-07-03 22:19 2502656 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\VBE6.DLL
+ 2003-08-03 17:52 . 2003-08-03 17:52 2808376 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\STSLIST.DLL
+ 2003-07-31 22:21 . 2003-07-31 22:21 1782840 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\PPTVIEW.EXE
+ 2003-07-30 19:40 . 2003-07-30 19:40 6133312 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\POWERPNT.EXE
+ 2003-08-01 22:09 . 2003-08-01 22:09 8086072 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OWC11.DLL
+ 2003-08-04 20:19 . 2003-08-04 20:19 7330360 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OWC10.DLL
+ 2003-08-10 06:06 . 2003-08-10 06:06 7522360 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OUTLLIB.DLL
+ 2003-07-07 20:36 . 2003-07-07 20:36 2058343 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OUTLFLTR.DAT
+ 2003-07-15 06:05 . 2003-07-15 06:05 1054264 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\OMFC.DLL
+ 2003-07-28 19:24 . 2003-07-28 19:24 5677112 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSPUB.EXE
+ 2003-06-19 00:31 . 2003-06-19 00:31 1033216 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSPCORE.DLL
+ 2003-08-15 07:54 . 2003-08-15 07:54 6627392 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSACCESS.EXE
+ 2003-08-01 22:07 . 2003-08-01 22:07 4815424 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\INFOPATH.EXE
+ 2003-07-15 06:11 . 2003-07-15 06:11 2139192 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\GRAPH.EXE
+ 2003-07-26 02:00 . 2003-07-26 02:00 1157696 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\FPSRVUTL.DLL
+ 2003-07-24 06:01 . 2003-07-24 06:01 1949240 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\FPCUTL.DLL
+ 2007-02-12 14:10 . 2007-02-12 14:10 2451312 c:\windows\ie7updates\KB950759-IE7\ieapfltr.dat
+ 2006-05-04 23:26 . 2006-05-04 23:26 2808832 c:\windows\alcwzrd.exe
+ 2007-04-17 09:32 . 2007-04-17 09:32 2455488 c:\windows\$hf_mig$\KB950759-IE7\SP2QFE\ieapfltr.dat
+ 2002-09-13 13:41 . 2002-09-13 13:41 13107200 c:\windows\system32\oembios.bin
+ 2002-09-13 13:41 . 2002-09-13 13:41 13107200 c:\windows\system32\dllcache\oembios.bin
+ 2003-08-06 20:24 . 2003-08-06 20:24 12037688 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\WINWORD.EXE
+ 2003-08-08 07:23 . 2003-08-08 07:23 12172336 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\MSO.DLL
+ 2003-08-13 09:34 . 2003-08-13 09:34 10073144 c:\windows\Installer\$PatchCache$\Managed\0140110900063D11C8EF10054038389C\11.0.5614\EXCEL.EXE
+ 2007-07-27 07:47 . 2007-07-27 07:47 131022336 c:\windows\Installer\49711.msp
.
-- Snapshot per reimpostare la data corrente --
.
((((((((((((((((((((((((((((((((((((( Punti Reg Caricati ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* i valori vuoti & legittimi/default non sono visualizzati.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"L08IXLRD_1089015"="c:\programmi\Microsoft Student\Microsoft Encarta 2008 - Premium + Student DVD\EDICT.EXE" [2007-06-12 351000]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"preload"="c:\windows\RUNXMLPL.exe" [2007-04-21 20480]
"Adobe Reader Speed Launcher"="c:\programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-03-08 40048]
"IAAnotif"="c:\programmi\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-05-07 178712]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2008-04-14 208952]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2008-04-14 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-14 455168]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-06-17 150040]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-06-17 170520]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-06-17 141848]
"SynTPEnh"="c:\programmi\Synaptics\SynTP\SynTPEnh.exe" [2008-02-22 1032192]
"RTHDCPL"="RTHDCPL.EXE" [2008-05-16 16862720]
"AzMixerSel"="c:\programmi\Realtek\Audio\InstallShield\AzMixerSel.exe" [2006-07-18 53248]
"WarReg_PopUp"="c:\acer\WR_PopUp\WarReg_PopUp.exe" [2007-02-20 61440]
"Google Desktop Search"="c:\programmi\Google\Google Desktop Search\GoogleDesktop.exe" [2010-06-28 30192]
"ePower_DMC"="c:\programmi\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2008-07-08 466944]
"Boot"="c:\programmi\Acer\Empowering Technology\ePower\Boot.exe" [2007-12-25 579584]
"eRecoveryService"="c:\programmi\Acer\Empowering Technology\eRecovery\eRAgent.exe" [2007-07-11 421888]
"LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2008-06-09 870920]
"SunJavaUpdateSched"="c:\programmi\Java\jre6\bin\jusched.exe" [2009-11-22 149280]
"NeroFilterCheck"="c:\programmi\File comuni\Ahead\Lib\NeroCheck.exe" [2007-03-01 153136]
"SecurDisc"="c:\programmi\Nero\Nero 7\InCD\NBHGui.exe" [2007-06-25 1629480]
"InCD"="c:\programmi\Nero\Nero 7\InCD\InCD.exe" [2007-06-25 1057064]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Programmi\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Documents and Settings\\XX\\Desktop\\mIRC-6.31-ITA_TuttoIRC\\mIRC-6.31-ITA_TuttoIRC\\mIRC-6.31-ITA_TuttoIRC\\mIRC.exe"=

R2 ONDA Autorun CDROM Monitor;ONDA Autorun CDROM Monitor;c:\windows\system32\SupportAppXL\onda_mon.exe [06/12/2010 19.39.19 86016]
R2 VMCService;Vodafone Mobile Connect Service;c:\programmi\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [03/07/2009 11.40.30 9216]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [13/02/2009 10.25.20 108032]
R3 O2MDRDR;O2MDRDR;c:\windows\system32\drivers\o2media.sys [13/05/2008 20.49.12 51288]
R3 O2SDRDR;O2SDRDR;c:\windows\system32\drivers\o2sd.sys [12/06/2008 17.30.12 43608]
S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\drivers\ewusbnet.sys [09/01/2010 17.47.35 112640]
S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\programmi\Google\Google Desktop Search\GoogleDesktop.exe [13/02/2009 1.42.20 30192]
S3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\drivers\ewusbfake.sys [09/01/2010 17.50.09 102656]
S3 ONDAusbmdm6k;ONDA Proprietary USB Driver;c:\windows\system32\drivers\ONDAusbmdm6k.sys [06/12/2010 19.40.00 104960]
S3 ONDAusbnet;ONDA USB-NDIS miniport;c:\windows\system32\drivers\ONDAusbnet.sys [06/12/2010 19.40.00 110080]
S3 ONDAusbnmea;ONDA NMEA Port;c:\windows\system32\drivers\ONDAusbnmea.sys [06/12/2010 19.40.00 104960]
S3 ONDAusbser6k;ONDA Diagnostic Port;c:\windows\system32\drivers\ONDAusbser6k.sys [06/12/2010 19.40.00 104960]
S3 TpChoice;Touch Pad Detection Filter driver;c:\windows\system32\drivers\TpChoice.sys [26/12/2007 6.23.10 17968]
.
.
------- Scansione supplementare -------
.
uStart Page = hxxp://www.google.it/
mStart Page = hxxp://home.sweetim.com
uInternet Connection Wizard,ShellNext = iexplore
IE: E&sporta in Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\programmi\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-01-17 16:05
Windows 5.1.2600 Service Pack 3 NTFS

scansione processi nascosti ...

scansione entrate autostart nascoste ...

Scansione files nascosti ...

Scansione completata con successo
Files nascosti: 0

**************************************************************************
.
--------------------- CHIAVI DI REGISTRO BLOCCATE ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•9~*]
"0140110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
.
--------------------- Dlls caricate dai processi in esecuzione ---------------------

- - - - - - - > 'explorer.exe'(2404)
c:\windows\system32\WININET.dll
c:\progra~1\FILECO~1\MICROS~1\WEBCOM~1\10\OWC10.DLL
c:\programmi\File comuni\Microsoft Shared\Web Components\10\1040\OWCI10.DLL
c:\progra~1\FILECO~1\MICROS~1\WEBCOM~1\11\OWC11.DLL
c:\programmi\File comuni\Microsoft Shared\Web Components\11\1040\OWCI11.DLL
c:\windows\system32\mshtml.dll
c:\windows\system32\msls31.dll
.
------------------------ Altri processi in esecuzione ------------------------
.
c:\programmi\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\programmi\Nero\Nero 7\InCD\InCDsrv.exe
c:\windows\system32\igfxsrvc.exe
c:\windows\RTHDCPL.EXE
c:\programmi\Java\jre6\bin\jqs.exe
c:\programmi\File comuni\LightScribe\LSSrvc.exe
c:\programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\programmi\O2Micro Flash Memory Card Driver\o2flash.exe
c:\windows\system32\wdfmgr.exe
c:\windows\system32\igfxext.exe
c:\docume~1\XX\IMPOST~1\Temp\RtkBtMnt.exe
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wscntfy.exe
c:\windows\system32\wbem\unsecapp.exe
.
**************************************************************************
.
Ora fine scansione: 2011-01-17 16:07:50 - Il pc è stato riavviato
ComboFix-quarantined-files.txt 2011-01-17 15:07
ComboFix2.txt 2011-01-16 21:14

Pre-Run: 132.649.369.600 byte disponibili
Post-Run: 132.636.934.144 byte disponibili

- - End Of File - - 0FCD2DBF09DDDD0CF64B6529DE955D55

Si r16 i miglioramenti ci sono,

infatti mi sembra che sia un po piu veloce rispetto a prima, non mi esce piu il messaggio di errore in accensione, e mi fa entrare nel C
comunque di sequito ti posto il log aggiornato dai un occhiata mi sa che ho anche dei toolbar vorrei eliminarli propio

grazie





Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21.27.41, on 17/01/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16915)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programmi\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\Programmi\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
C:\Programmi\Nero\Nero 7\InCD\InCDsrv.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Programmi\Google\Google Desktop Search\GoogleDesktop.exe
C:\Programmi\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Programmi\Java\jre6\bin\jqs.exe
C:\PROGRA~1\LAUNCH~1\LManager.exe
C:\Programmi\Java\jre6\bin\jusched.exe
C:\Programmi\Nero\Nero 7\InCD\NBHGui.exe
C:\Programmi\Nero\Nero 7\InCD\InCD.exe
C:\Programmi\Microsoft Student\Microsoft Encarta 2008 - Premium + Student DVD\EDICT.EXE
C:\Programmi\File comuni\LightScribe\LSSrvc.exe
C:\Programmi\File comuni\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Programmi\O2Micro Flash Memory Card Driver\o2flash.exe
C:\WINDOWS\system32\SupportAppXL\onda_mon.exe
C:\WINDOWS\system32\igfxext.exe
C:\Programmi\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
C:\DOCUME~1\XX\IMPOST~1\Temp\RtkBtMnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\explorer.exe
C:\Programmi\Internet Explorer\iexplore.exe
C:\Programmi\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.it/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Collegamenti
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Programmi\File comuni\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Guida per l'accesso a Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Programmi\File comuni\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Programmi\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Programmi\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O4 - HKLM\..\Run: [preload] C:\Windows\RUNXMLPL.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Programmi\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [IAAnotif] C:\Programmi\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Programmi\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [AzMixerSel] C:\Programmi\Realtek\Audio\InstallShield\AzMixerSel.exe
O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe /idle
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Programmi\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [ePower_DMC] C:\Programmi\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [Boot] C:\Programmi\Acer\Empowering Technology\ePower\Boot.exe
O4 - HKLM\..\Run: [eRecoveryService] C:\Programmi\Acer\Empowering Technology\eRecovery\eRAgent.exe
O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Programmi\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Programmi\File comuni\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SecurDisc] C:\Programmi\Nero\Nero 7\InCD\NBHGui.exe
O4 - HKLM\..\Run: [InCD] C:\Programmi\Nero\Nero 7\InCD\InCD.exe
O4 - HKCU\..\Run: [L08IXLRD_1089015] "C:\Programmi\Microsoft Student\Microsoft Encarta 2008 - Premium + Student DVD\EDICT.EXE" -m
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&sporta in Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Programmi\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: Ricerche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Barra di ricerca di Encarta - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Programmi\File comuni\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programmi\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Precaricatore Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Daemon di cache delle categorie di componenti - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Programmi\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Programmi\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Programmi\Nero\Nero 7\InCD\InCDsrv.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Programmi\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Programmi\File comuni\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Programmi\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Programmi\File comuni\Ahead\Lib\NMIndexingService.exe
O23 - Service: O2Micro Flash Memory Card Service (o2flash) - O2Micro International - C:\Programmi\O2Micro Flash Memory Card Driver\o2flash.exe
O23 - Service: ONDA Autorun CDROM Monitor - Unknown owner - C:\WINDOWS\system32\SupportAppXL\onda_mon.exe
O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Programmi\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe
O24 - Desktop Component 0: (no name) - http://static.subito.it/js/points.js

--
End of file - 7993 bytes

creare uno nuovo cosa?

vuoi dire che a fine operazione devo postarti il log aggiornato

Giusto?

ok r16,


ho fatto tutto quello che mi ai detto.
ora che faccio? Abbiamo finiti ho ti devo postare il log aggiornato di hijackthis?

grazie

ok r16,

ho seguito alla lettera tutto quello che mi ai scritto.
il pc funziona benissimo.
Ti ringrazio tantissimo sei stato gentillissimo.

Alla prossima
Grazie.